Normally we use ppp / ppp as username and password for scanning a corrupted object.

If I read this correctly the username / password length matters in the scanning for corrupted object phase.

https://www.psx-place.com/threads/11-00-my-method-of-increasing-the-success-rate-of-pppwn-to-50.43828/

Is this correct or do we have to alter the Corrupt_num = 0x1 to 0x5 ?

That was the solution for me! It always took me around 20 to 30 attempts with the Raspberry Pi until the hack worked. I have now extended the user name and password for pppoe to both "ppp12345" and now it works every time on the first or second attempt. Thanks you!